Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
File: XpgU1DFdMK28jeMGAFVq6cPPns4.mft (raw, json)
Hash identifier: tH0dQLW3ILnl+ZKJLRW3gSSPDfPF2IPtnc8OfSpIXeg=
Subject key identifier: 26:77:59:02:C5:36:25:EA:60:EA:BA:CC:81:E3:3B:3F:8E:A5:09:5A
Authority key identifier: 5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
Certificate issuer: /CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Certificate serial: 0199FC58B684D5DE93A8DA52E39679C55955
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 12:01:36 +0000
Manifest this update: Sun 19 Oct 2025 12:01:36 +0000
Manifest next update: Mon 20 Oct 2025 12:01:36 +0000
Files and hashes: 1: XpgU1DFdMK28jeMGAFVq6cPPns4.crl (hash: yMLsWh6hdERZF7R5ZxjIyPZLPAlBJ40aOu2B1DZ/YBQ=)
2: srWs4lSgEcXww8bmZ8Qduqdxgdw.roa (hash: Fa3vdYsDt8LbAe4PXMPi2JDBOubqWHhdVQas9y66mmI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:b6:84:d5:de:93:a8:da:52:e3:96:79:c5:59:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Validity
Not Before: Oct 19 12:01:36 2025 GMT
Not After : Oct 20 12:01:36 2025 GMT
Subject: CN=26775902c53625ea60eabacc81e33b3f8ea5095a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:64:ce:90:49:9a:69:74:1b:8a:5d:0d:cc:91:
28:24:4d:e3:96:8e:9b:86:4a:50:b5:3d:85:60:2f:
30:04:72:f2:ce:7d:bc:8f:f3:74:24:9f:eb:d4:3b:
ee:e1:46:4a:ac:ea:4d:67:87:6d:a8:c3:67:32:a5:
f3:26:df:cf:da:71:b5:0f:2d:12:b9:84:16:89:73:
16:bb:c6:be:13:68:49:cc:41:fa:4b:28:e8:5b:35:
95:0a:62:ed:9f:43:65:0d:7f:aa:74:79:10:22:30:
62:df:7b:9f:a9:ab:f7:8a:3b:71:a1:c7:fd:91:f7:
35:35:91:d4:21:e3:52:47:ba:76:bc:1c:45:e4:2f:
54:2a:64:59:01:37:b6:ba:db:d5:8b:40:e8:1e:78:
28:1f:ba:1f:86:66:c6:87:a8:a1:8d:41:f7:0b:cc:
49:25:a4:c5:91:89:f2:b8:e7:f6:5d:7b:c1:17:d0:
da:50:22:0b:ea:67:3f:c0:1c:dd:0c:df:51:c7:40:
da:a7:26:98:f0:57:4f:bf:59:bb:ec:8f:c9:6d:4e:
da:9c:95:24:34:85:fa:98:d1:db:14:75:f4:34:e5:
e6:1a:d9:1a:07:d2:d2:3d:d5:89:7c:c4:07:ac:12:
89:31:a5:64:01:59:6a:c8:93:90:76:65:5a:3f:d2:
d3:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:77:59:02:C5:36:25:EA:60:EA:BA:CC:81:E3:3B:3F:8E:A5:09:5A
X509v3 Authority Key Identifier:
keyid:5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:48:45:50:92:fe:db:e0:f7:89:08:25:e3:c3:75:0c:f6:12:
aa:aa:5b:59:cd:e3:8c:b5:b1:b7:d6:3f:4a:6c:9b:29:6f:fd:
c6:16:02:29:cf:6a:20:08:9e:4f:86:fe:c8:24:04:3c:19:95:
7d:e0:ea:3f:bd:e4:5c:00:94:d4:46:4d:0d:e8:62:80:8b:21:
5c:d2:49:ca:e9:ae:dc:54:ae:97:91:17:4a:83:1e:c7:bc:46:
53:c2:44:fa:a2:ee:67:1c:b8:b8:8e:c0:70:c1:dd:27:eb:b2:
f9:3d:ac:80:06:fb:30:e0:2f:3c:3c:4a:e4:25:d6:7d:4e:48:
6d:01:47:cb:c6:5e:fa:a1:c5:3e:3b:14:19:10:32:78:d3:14:
94:a5:f2:02:fa:a6:5c:61:10:ae:dd:d9:26:4e:f1:14:d7:4c:
99:ac:3d:3f:0a:70:b4:ec:2a:ee:55:b4:46:df:39:1c:21:a1:
8b:c2:1a:42:56:ae:a5:43:97:3e:6f:09:5f:62:44:a6:3b:32:
0e:6f:cb:f5:8f:c9:6f:4c:04:b9:76:8f:41:a6:b5:59:02:80:
63:dc:04:7b:54:df:33:a2:00:b2:df:90:89:b1:9f:62:78:15:
65:c4:24:07:19:2d:8b:23:05:d7:6d:45:ba:5d:e1:be:22:2f:
c1:eb:48:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8WLaE1d6TqNpS45Z5xVlVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlOTgxNGQ0MzE1ZDMwYWRiYzhkZTMwNjAwNTU2YWU5YzNj
ZjllY2UwHhcNMjUxMDE5MTIwMTM2WhcNMjUxMDIwMTIwMTM2WjAzMTEwLwYDVQQD
EygyNjc3NTkwMmM1MzYyNWVhNjBlYWJhY2M4MWUzM2IzZjhlYTUwOTVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmTOkEmaaXQbil0NzJEoJE3jlo6b
hkpQtT2FYC8wBHLyzn28j/N0JJ/r1Dvu4UZKrOpNZ4dtqMNnMqXzJt/P2nG1Dy0S
uYQWiXMWu8a+E2hJzEH6SyjoWzWVCmLtn0NlDX+qdHkQIjBi33ufqav3ijtxocf9
kfc1NZHUIeNSR7p2vBxF5C9UKmRZATe2utvVi0DoHngoH7ofhmbGh6ihjUH3C8xJ
JaTFkYnyuOf2XXvBF9DaUCIL6mc/wBzdDN9Rx0DapyaY8FdPv1m77I/JbU7anJUk
NIX6mNHbFHX0NOXmGtkaB9LSPdWJfMQHrBKJMaVkAVlqyJOQdmVaP9LTLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCZ3WQLFNiXqYOq6zIHjOz+OpQlaMB8GA1UdIwQY
MBaAFF6YFNQxXTCtvI3jBgBVaunDz57OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHBnVTFERmRNSzI4amVNR0FGVnE2Y1BQbnM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS83YTc4ZDQtMDM0MC00MjI3LWIxNDct
MzViNTNkMjM3NmQyLzEvWHBnVTFERmRNSzI4amVNR0FGVnE2Y1BQbnM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS83YTc4ZDQtMDM0MC00MjI3LWIxNDctMzViNTNkMjM3NmQy
LzEvWHBnVTFERmRNSzI4amVNR0FGVnE2Y1BQbnM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfUhFUJL+
2+D3iQgl48N1DPYSqqpbWc3jjLWxt9Y/SmybKW/9xhYCKc9qIAieT4b+yCQEPBmV
feDqP73kXACU1EZNDehigIshXNJJyumu3FSul5EXSoMex7xGU8JE+qLuZxy4uI7A
cMHdJ+uy+T2sgAb7MOAvPDxK5CXWfU5IbQFHy8Ze+qHFPjsUGRAyeNMUlKXyAvqm
XGEQrt3ZJk7xFNdMmaw9PwpwtOwq7lW0Rt85HCGhi8IaQlaupUOXPm8JX2JEpjsy
Dm/L9Y/Jb0wEuXaPQaa1WQKAY9wEe1TfM6IAst+QibGfYngVZcQkBxktiyMF121F
ul3hviIvwetIxw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:34:44 2025 by rpki-client